29aa15c6cbf9dd961a38d5e1c16caed3_JaffaCakes118 | Triage

Sharing

General

Target

29aa15c6cbf9dd961a38d5e1c16caed3_JaffaCakes118
Size

191KB
MD5

29aa15c6cbf9dd961a38d5e1c16caed3
SHA1

af678496bcab57e0df1b8c7350d076a670b3ad0a
SHA256

5f290e93351870274ca0e3a08dd9edc5c622ac2f017c96a925de185d40d2bf07
SHA512

f07258b2f7935fb4c911e3636d5fdcc7970967c474a186c1c534f205ce28a5c28cdf91ade9f3b14e63dd81cefcacc55f121692e90171bc38987280ee294c855c
SSDEEP

3072:kPb7/H5/XqWSg0UTKvT8tN2wA7JIGkSg38iH/bPbif7B7bbrMbvT0q8O1cZPzQ7i:kv/TOUTKYtSaGkSqbPbifdXwvP6bQ7yJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
29aa15c6cbf9dd961a38d5e1c16caed3_JaffaCakes118

Files

29aa15c6cbf9dd961a38d5e1c16caed3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 61KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 27KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 106KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE